Description

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOU_ATTR_IPPROTO. fou_udp_recv() has the same problem mentioned in the previous patch. If FOU_ATTR_IPPROTO is set to 0, skb is not freed by fou_udp_recv() nor "resubmit"-ted in ip_protocol_deliver_rcu(). Let's forbid 0 for FOU_ATTR_IPPROTO.

INFO

Published Date :

2026-02-04T16:08:07.561Z

Last Modified :

2026-02-09T08:38:23.034Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23083 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23083.

URL Resource
https://git.kernel.org/stable/c/1cc98b8887cabb1808d2f4a37cd10a7be7574771 cve-icon cve-icon
https://git.kernel.org/stable/c/611ef4bd9c73d9e6d87bed57a635ff1fdd8c91ea cve-icon cve-icon
https://git.kernel.org/stable/c/6e983789b7588ee59cbf303583546c043bad8e19 cve-icon cve-icon
https://git.kernel.org/stable/c/7a9bc9e3f42391e4c187e099263cf7a1c4b69ff5 cve-icon cve-icon
https://git.kernel.org/stable/c/9b75dff8446ec871030d8daf5a69e74f5fe8b956 cve-icon cve-icon
https://git.kernel.org/stable/c/b7db31a52c3862a1a32202a273a4c32e7f5f4823 cve-icon cve-icon
https://git.kernel.org/stable/c/c7498f9bc390479ccfad7c7f2332237ff4945b03 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026020422-CVE-2026-23083-8968@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23083 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23083 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact